lumma | 387bac293a9a682a1bb6058e4468d8f1daeecdca56f99d2f8b1096c4a9073103

Sharing

Copy URL

Twitter E-mail

General

Target

github.software.1.2.4.7z
Size

2.2MB
Sample

240628-vgdw9szelm
MD5

fc196986c45a667f813f725e47a4286b
SHA1

64f7672e8f95ff25ca3a0e3d37327a3abccdd00d
SHA256

387bac293a9a682a1bb6058e4468d8f1daeecdca56f99d2f8b1096c4a9073103
SHA512

e76736fe6a660071bf7f0cd01b2943653b929f86fba76744461dc47ad7e848aa90bac3a263695b7ef2500917ac32cd0790d56c5a02c185dcb19b97b8c76e1aa8
SSDEEP

49152:W0zRTrJROFTEXMMpJcCk5M5HeQMsadFOI2os:prJ2EwCkJQvadFOIY

Score

10^/10

lumma stealer

Malware Config

Extracted

Family

lumma

https://bitchsafettyudjwu.shop/api

https://potterryisiw.shop/api

https://foodypannyjsud.shop/api

https://contintnetksows.shop/api

https://reinforcedirectorywd.shop/api

Targets

- Target
  
  github.software.1.2.4.7z
- Size
  
  2.2MB
- MD5
  
  fc196986c45a667f813f725e47a4286b
- SHA1
  
  64f7672e8f95ff25ca3a0e3d37327a3abccdd00d
- SHA256
  
  387bac293a9a682a1bb6058e4468d8f1daeecdca56f99d2f8b1096c4a9073103
- SHA512
  
  e76736fe6a660071bf7f0cd01b2943653b929f86fba76744461dc47ad7e848aa90bac3a263695b7ef2500917ac32cd0790d56c5a02c185dcb19b97b8c76e1aa8
- SSDEEP
  
  49152:W0zRTrJROFTEXMMpJcCk5M5HeQMsadFOI2os:prJ2EwCkJQvadFOIY
Score

3^/10
behavioral1
- Target
  
  github.software.1.2.4.exe
- Size
  
  512KB
- MD5
  
  40e2eec44440b05252d597d1f3a7c322
- SHA1
  
  9a5ee75fdba536d3e954e70c58597e96a6921658
- SHA256
  
  cb8b98537cfd5101d1ff182c696cb16fc6478822f6c7deced4efc08b6b02114a
- SHA512
  
  325c54743904c7f183d46b7fd16686f0594bd41f85954b8237fcd455542b981804accc65decc4535b0b4122d6be8c41d2470b9f0bc991bf8a4beda14800506d3
- SSDEEP
  
  12288:YBzlsxxxMCQMQA1cR0HB7Ndtjpw2zw1ybLnOMA:Y5iDxWIciHB7jxzw1ybLn
Score

10^/10

lumma stealer
- Lumma Stealer
  An infostealer written in C++ first seen in August 2022.
  stealer lumma
- Suspicious use of SetThreadContext
behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

Sharing

General

Malware Config

Extracted

Targets

Lumma Stealer

Suspicious use of SetThreadContext

MITRE ATT&CK Matrix ATT&CK v13

Tasks

static1

behavioral1

behavioral2